Vulnerabilities (CVE)

Filtered by vendor Replaysorcery Project Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-36983 1 Replaysorcery Project 1 Replaysorcery 2024-02-28 7.2 HIGH 7.8 HIGH
replay-sorcery-kms in Replay Sorcery 0.6.0 allows a local attacker to gain root privileges via a symlink attack on /tmp/replay-sorcery or /tmp/replay-sorcery/device.sock.
CVE-2021-26936 1 Replaysorcery Project 1 Replaysorcery 2024-02-28 7.2 HIGH 7.8 HIGH
The replay-sorcery program in ReplaySorcery 0.4.0 through 0.5.0, when using the default setuid-root configuration, allows a local attacker to escalate privileges to root by specifying video output paths in privileged locations.